Release 5 R6 Ballot (3rd Draft)
This page is part of the FHIR Specification (v5.0.0: R5 - STU ). This is the current published version in it's permanent home (it will always be available at this URL). For a full list of available versions, see the Directory of published versions

Publish-box (todo)

Example AuditEvent/example-consent-permit-authz (XML)

Security Work Group Maturity Level : N/A Standards Status : Informative Compartments : Device , Group , Patient , Practitioner

Raw XML ( canonical form + also see XML Format Specification )

Jump past Narrative

An AuditEvent recording a 'permit' authorization decision by a Consent Decision Service, based on a Consent resource (C1) filed by a patient (P1), in response to a request by an organization (Org1) for the purpose of treatment (TREAT). (id = "example-consent-permit-authz") 

<?xml version="1.0" encoding="UTF-8"?>


  

  display: inline-block; background-color: #d9e0e7; padding: 6px; margin: 4px; border:
       1px solid #8da1b4; border-radius: 5px; line-height: 60%Success (Details: http://terminology.hl7.org/CodeSystem/audit-event-outcome code
             0 = 'Success', stated as 'Success')
    
      
      
      
    
  
  
  
  
    
      
      
      
    
    
      
    
  
    
      
    
  
    
      
        
        
        
      
    
    
      
        
        
      
    
    
    
      
        
        
      
    
  
  
    
      
    
    
      
        
        
        
      
    
  
  
    
      
    
    
      
        
        
        
      
    
  

<AuditEvent xmlns="http://hl7.org/fhir">
  <id value="example-consent-permit-authz"/> 
  <type> 
    <coding> 
      <system value="http://dicom.nema.org/resources/ontology/DCM"/> 
      <code value="110113"/> 
      <display value="Security Alert"/> 
    </coding> 
  </type> 
  <subtype> 
    <coding> 
      <system value="http://dicom.nema.org/resources/ontology/DCM"/> 
      <code value="110112"/> 
      <display value="Query"/> 
    </coding> 
  </subtype> 
  <action value="E"/> 
  <recorded value="2021-09-08T21:51:59.932Z"/> 
  <outcome> 
    <code> 
      <system value="http://terminology.hl7.org/CodeSystem/audit-event-outcome"/> 
      <code value="0"/> 
      <display value="Success"/> 
    </code> 
    <detail> 
      <text value="CONSENT_PERMIT"/> 
    </detail> 
  </outcome> 
  <patient> 
    <reference value="Patient/example"/> 
  </patient> 
  <agent> 
    <type> 
      <coding> 
        <system value="http://dicom.nema.org/resources/ontology/DCM"/> 
        <code value="110152"/> 
        <display value="Destination Role ID"/> 
      </coding> 
    </type> 
    <who> 
      <identifier> 
        <system value="https://github.com/synthetichealth/synthea"/> 
        <value value="Org1"/> 
      </identifier> 
    </who> 
    <requestor value="true"/> 
    <authorization> 
      <coding> 
        <system value="http://terminology.hl7.org/CodeSystem/v3-ActReason"/> 
        <code value="TREAT"/> 
      </coding> 
    </authorization> 
  </agent> 
  <source> 
    <observer> 
      <display value="LEAP Consent Decision Service"/> 
    </observer> 
    <type> 
      <coding> 
        <system value="http://terminology.hl7.org/CodeSystem/security-source-type"/> 
        <code value="4"/> 
        <display value="Application Server"/> 
      </coding> 
    </type> 
  </source> 
  <entity> 
    <what> 
      <reference value="Consent/consent-example-basic"/> 
    </what> 
    <role> 
      <coding> 
        <system value="http://terminology.hl7.org/CodeSystem/object-role"/> 
        <code value="4"/> 
        <display value="Domain Resource"/> 
      </coding> 
    </role> 
  </entity> 


</

AuditEvent

>

Usage note: every effort has been made to ensure that the examples are correct and useful, but they are not a normative part of the specification.